CVE-2016-20043 in NRSS RSS Reader
Résumé (Anglaise)
NRSS RSS Reader 0.3.9-1 contains a stack buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized argument to the -F parameter. Attackers can craft a malicious input with 256 bytes of padding followed by a controlled EIP value to overwrite the return address and achieve code execution.
Responsable
VulnCheck
Réserver
28/03/2026
Divulgation
28/03/2026
Entrées
| Publié | Base | Temp | Vulnérabilité | CWE | Prod | Exp | Con | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 28/03/2026 | 6.8 | 6.6 | NRSS RSS Reader buffer overflow | 787 | Inconnu | Preuve de concept | Non défini | 0.00013 | 0.94 | CVE-2016-20043 |